Faith-Based Daily Awareness Post 6 March 2025

These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters. 

Pastor sentenced to probation after pleading guilty to stealing $500K from church 

Former pastor Brian Keith Herring, who embezzled over $500,000 from Harrison Faith Church in Arkansas, was sentenced to 17 years of probation, 800 hours of community service, and ordered to pay $100,000 in restitution. Herring, also a former city councilman, was convicted of felony theft, forgery, and tampering with evidence after an audit revealed he used church funds for personal expenses. He had previously denied the allegations, blaming a personal conflict with a former church member. Herring had a history of financial issues, including multiple bankruptcy filings.  

Analyst Comments: The case of Brian Herring highlights a clear example of insider threat to organizations.  Insider threats involve risks posed by individuals within the organization, whether employees, volunteers, or leaders who misuse their access to sensitive information or resources for personal benefit. In this instance, Herring, a trusted pastor and former city councilman, exploited his position to steal over $500,000 from his own church congregation. Even houses of worship are not immune from fraud, and all organizations are encouraged to develop safeguards to prevent this type of incident. 

Insider threat resources:  

• Insider Threat Mitigation Guide 
• Mitigating Attacks on Houses of Worship  

Chinese Nationals with Ties to the PRC Government and “APT27” Charged in a Computer Hacking Campaign for Profit, Targeting Numerous U.S. Companies, Institutions, and Municipalities 

Two Chinese nationals, Yin Kecheng and Zhou Shuai, have been charged in a computer hacking campaign targeting U.S. companies, institution, and municipalities. From 2011 to the present, they stole sensitive data for profit, affecting technology companies, think tanks, defense contractors, and government entities. Tied to the Chinese government, specifically the Ministry of Public Security and Ministry of State Security, the hackers were directed to conduct cyber intrusions and sell the stolen data. U.S. authorities have issued arrest warrants for both individuals, who remain fugitives, and seized domains linked to the hacking activities.  

Analyst Comments: This indictment underscores the rising concern about cyber espionage, particularly by state-sponsored actors, where hacking activities are not merely criminal but strategically planned to achieve political and economic objectives. The involvement of individuals linked to the Chinese government and the APT27 group (Emissary Panda) highlights the growing scale of cyber operations. For organizations that are concerned over their current cyber maturity, below are several resources from CISA to assist: 

• Cybersecurity Best Practices 
• Mitigating Cyber Threats with Limited Resources 
• Cyber Hygiene Services 

Global Terrorism Index 2025: Terrorism Spreads as Lone Wolf Attacks Dominate the West 

The Global Terrorism Index (GTI) 2025, published by the Institute for Economics & Peace (IEP), reveals significant shifts in global terrorism patterns. While overall deaths from terrorism decreased by 13% in 2024, the number of countries experiencing terrorist incidents rose from 58 in 2023 to 66 in 2024, marking the highest count since 2018.  

 Analyst Comments: The rise of lone-actor terrorism in Western countries, especially in 2024, is concerning. These attacks are frequently linked to individuals radicalized through online platforms. This presents a significant challenge for security agencies, as these attacks are more difficult to anticipate and stop due to their decentralized nature.  

• National Security and Terrorism 
• Preventing Terrorism and Targeted Violence